Interested in getting your own thought leader profile? Get Started Today.

Graeme Payne

President & CEO at Cybersecurity4Executives

Atlanta, United States

Graeme Payne is a consultant, speaker, and coach. He works with boards and senior executives to help them understand and manage cybersecurity and IT risks. He has over 30 years of experience in consulting and IT management in financial services, insurance, healthcare, retail, manufacturing, and utility industries. During the Equifax 2017 Data Breach (which exposed the sensitive information on 146 million US consumers), he was Senior Vice President and CIO of Global Corporate Platforms. He was fired the day before the former Chairman and CEO of Equifax testified to Congress that the root cause of the data breach was a human error and technological failure. Graeme would later be identified as “the human error”.

Prior to joining Equifax in 2011, Graeme was a Principal at Ernst & Young and Global Leader of Governance, Risk & Compliance at Wipro Consulting. Over his 30 year career, he has consulted with hundreds of companies on cybersecurity and IT risk programs. Graeme started his career as an accountant and holds many security and IT risk certifications. He grew up and worked in New Zealand before moving to the United States in 1995.

Graeme Payne Points
Academic 0
Author 64
Influencer 0
Speaker 0
Entrepreneur 0
Total 64

Points based upon Thinkers360 patent-pending algorithm.

Thought Leader Profile

Portfolio Mix

Company Information

Company Type: Company
Theatre: North America
Minimum Project Size: Undisclosed
Average Hourly Rate: Undisclosed
Number of Employees: Undisclosed
Company Founded Date: Undisclosed

Areas of Expertise

Cybersecurity 33.13
Digital Transformation
Leadership 30.97
Risk Management
Culture 31.22

Industry Experience

Financial Services & Banking


4 Article/Blogs
Who in their right mind would want to be a CISO?
February 21, 2019
The Chief Information Security Officer (CISO) is one of the most challenging roles in companies today. Just look at what we ask a CISO to do:

See publication

Tags: Cybersecurity

“The disconnect between policy development and execution was especially pronounced with respect to Equifax’s Patch Management Policy”
February 18, 2019
This is my last article in my patch management series. In previous articles I have described many of the challenges of patch management. In this article, I am wrapping up this series discussing the role of security policies and the importance of implementing robust patch management processes.

See publication

Tags: Cybersecurity

“[Equifax’s] lack of knowledge about the software used within its legacy IT environment was a key factor leading to the 2017 data breach”
February 14, 2019
In my previous articles I have discussed the importance of patch management and how this is a complex challenge in the modern enterprise. This article will focus on another challenge - knowing what you have in your IT environment. As a friend once told me “you can’t patch, what you don’t know you have”.

See publication

Tags: Cybersecurity

“Equifax’s...process failed to establish clear lines of accountability for developing IT security policies and executing these policies”
February 11, 2019
In my previous article I talked about the complexity of patch management and some steps companies can take to make patch management work. So who is responsible for ensuring that patches are identified, tested, and installed? The reality is that many different groups will have operational responsibility for different parts of the patch management process.

See publication

Tags: Cybersecurity

1 Book
The New Era of Cybersecurity Breaches: A Case Study and Lessons Learned
Cybersecurity Executive Advisors LLC
August 09, 2019
Over the last decade, as companies have continued to march forward on the digitization of everything, the cybersecurity risk profile has continued to change. Since 2005, there have been over 9,000 publicly disclosed data breaches. In the last five years, the financial losses due to cyber-attacks have risen by over 62%. Identifying, mitigating and managing cybersecurity risks in today’s environment is a challenging task.

See publication

Tags: Cybersecurity, Leadership, Culture

Thinkers360 Credentials

1 Badge



Contact Graeme Payne

Book a Meeting

Media Kit

Share Profile

Contact Info


Graeme Payne